Caching ClaimsPrincipal during authentication and re-caching FileConfiguration objects in Consul and Disk File configuration repos
#1249
Conversation
|
Hi Mohsen! What issue is this PR related to? |
|
@EngRajabi commented on May 30, 2020:
In comparison to what performance indicators was the current performance improved? |
raman-m
added
feature
|
I was in an enterprise project that used the reference token type. I had a performance problem. Because in every request, it needs to request the identity of the server. The problem was solved with this cache. |
Did you use Service Discovery + Identity Server setup, or classic setup + Identity Server Bearer Tokens? |
|
Unfortunately there are no builds for these commits! |
raman-m
force-pushed
the
feat_accessToken_cache
branch
from
cd5675c
to
0561ad5
Compare
|
Mohsen, congrats! 🎉 Now we can go with code review... And, once again, |
raman-m
removed
question
raman-m
requested review from
binarymash,
jps,
geffzhang,
RaynaldM,
philproctor,
anktsrkr,
sharpn,
abooraja,
wast,
yangzhongke and
thiagoloureiro
raman-m
force-pushed
the
feat_accessToken_cache
branch
from
c8c0634
to
4c2b93e
Compare
raman-m
removed request for
binarymash,
jps,
geffzhang,
philproctor,
anktsrkr,
sharpn,
abooraja,
yangzhongke,
thiagoloureiro and
Hossein-Edraki
raman-m
force-pushed
the
feat_accessToken_cache
branch
from
4c2b93e
to
a4e33f4
Compare
There was a problem hiding this comment.
The primary issue with this PR is the lack of a feature switcher❗
We suggest upgrading the middleware to enforce cache usage, which could be a breaking change for Ocelot applications in production. Therefore, we need to implement the upgrade with the cache turned off by default, and introduce a new JSON option to enable/disable caching as needed.
Additional suggestions include:
- Implementing unit+acceptance tests to cover the new static
CacheTtlSecondsproperty - Developing integration tests with usage of the
DefaultMemoryCache{T}caching service
| await _next(httpContext); | ||
| return; | ||
| } | ||
|
|
||
| Logger.LogInformation(() => $"The path '{path}' is an authenticated route! {MiddlewareName} checking if client is authenticated..."); | ||
| var token = httpContext.Request.Headers.Authorization; | ||
| var cacheKey = $"{nameof(AuthenticationMiddleware)}.{nameof(IHeaderDictionary.Authorization)}:{token}"; | ||
| if (!_memoryCache.TryGetValue(cacheKey, out ClaimsPrincipal principal)) |
There was a problem hiding this comment.
We are upgrading with enforced use of the cache❗
| @@ -42,22 +53,29 @@ private void Initialize(string folder) | |||
|
|
|||
| public Task<Response<FileConfiguration>> Get() | |||
| { | |||
| string jsonConfiguration; | |||
| var configuration = _cache.Get(CacheKey, region: CacheKey); | |||
| @@ -49,7 +51,7 @@ public void MiddlewareName_Cstor_ReturnsTypeName() | |||
| isNextCalled = true; | |||
| return Task.CompletedTask; | |||
| }; | |||
| _middleware = new AuthenticationMiddleware(_next, _factory.Object); | |||
| _middleware = new AuthenticationMiddleware(_next, _factory.Object, new MemoryCache(new MemoryCacheOptions())); | |||
There was a problem hiding this comment.
Enforcing the use of new MemoryCache turns the test into an integration test.
| } | ||
|
|
||
|
|
||
| // TODO Add integration tests: var aspMemoryCache = new DefaultMemoryCache<FileConfiguration>(new MemoryCache(new MemoryCacheOptions())); |
raman-m
added
Authentication
raman-m
changed the title
ClaimsPrincipalduring authentication and re-caching FileConfiguration objects in Consul and Disk File repos
raman-m
changed the title
ClaimsPrincipalduring authentication and re-caching FileConfiguration objects in Consul and Disk File reposClaimsPrincipal during authentication and re-caching FileConfiguration objects in Consul and Disk File configuration repos
New Feature
Cache response access token
Motivation for New Feature